On Fri, May 25, 2012 at 10:49:26PM +0100, Jason McIntyre wrote:
> On Fri, May 25, 2012 at 09:25:29PM +, Christian Weisgerber wrote:
> > RSA-4096 is really excessive. RSA-2048 is the general recommendation
> > and what we use by default for SSH and IKE host keys.
>
> i wish you'd commented ear
On Fri, May 25, 2012 at 09:25:29PM +, Christian Weisgerber wrote:
> Jason McIntyre wrote:
>
> > > While making a self-signed key for use with Apache I noticed that the
> > > FAQ recommends deprecated crypto (RSA-1024 and SHA1). I chose instead
> > > RSA-4096 and sha256. A couple patches for
Jason McIntyre wrote:
> > While making a self-signed key for use with Apache I noticed that the
> > FAQ recommends deprecated crypto (RSA-1024 and SHA1). I chose instead
> > RSA-4096 and sha256. A couple patches for the website and manual page
> > are below.
>
> changes committed, thanks.
RSA
On Wed, May 16, 2012 at 03:14:54PM -0500, Nicolai wrote:
> Hi all,
>
> While making a self-signed key for use with Apache I noticed that the
> FAQ recommends deprecated crypto (RSA-1024 and SHA1). I chose instead
> RSA-4096 and sha256. A couple patches for the website and manual page
> are below
Hi all,
While making a self-signed key for use with Apache I noticed that the
FAQ recommends deprecated crypto (RSA-1024 and SHA1). I chose instead
RSA-4096 and sha256. A couple patches for the website and manual page
are below.
You can see an example of the resulting cert on my personal site (
5 matches
Mail list logo
